What is Phishing?
A “phishing” email is designed to trick you into sharing personal information such as
- PIN numbers
- Credit card numbers
- Family information (mother’s maiden name)
- Social Security numbers
- Bank account numbers
The scammers behind these messages are not targeting you individually. Rather, they are blindly sending out email to millions of email addresses in the hopes that a few people will be fooled into providing the information they seek.
LPS email filters prevent hundreds of thousands of illicit messages from reaching LPS employee inboxes every week. Due to the ever changing tactics on the part of phishing scammers, some undesirable messages still reach our employee inboxes, despite our state of the art efforts to prevent it.
Have you already provided your personal information to someone?
If you have given your username and password to any NON-LPS site, your password must be changed as soon as possible. This link will take you to to the LPS Password Change tool where you are able to change your own password. This link will only work while you are on the LPS network.
Change Your LPS Password
How to recognize phishing
Your best protection against phishing is awareness. Modern phishing attempts are often sophisticated and appear to be legitimate correspondence from companies or organizations you trust. If any of the following tell-tale signs of an email scam are present DO NOT respond to the email:
- You have never done business with this company
- You are being told that there is a problem with your account and you must click a link to address the problem.
- The sender’s email address does not match the company legitimate address (@company.com)
- The message contains an impersonal greeting (Dear account holder, Dear web mail user, etc.)
- The message looks distinctly unprofessional (spelling mistakes, all capital letters, etc.)
- The message has a frightening or aggressive tone
- The message asks you to share your passwords, bank account info, or any other personal information via an email reply or link contained in the message
- The message claims you have won something you did not sign up to win
Is *this* email from LPS?
Be aware of the following:
- LPS will never ask you for your password. Not even the help desk.
- LPS does not have email quotas in place. In other words, we won’t email you to say that your mailbox is nearly full.
- LPS will not threaten to deactivate your email account. You need it to do your job.
- Any legitimate messages sent from the LPS Help Desk come from the address email@example.com. Most phishing messages come from some variation of near misses. (firstname.lastname@example.org, IT@lps.org, etc.)
If you question a message, feel free to call x1735 to check its authenticity.
What to do when you receive a phishing message
OPTION 1: If the message displays hallmarks of a phishing scam, simply DELETE the message and carry on with your day.
OPTION 2: Users may choose to subscribe to the LPS Stop Spam folder in Zimbra and place questionable messages in that folder to assist with maintaining our spam filter. Instructions for setting this up are found on this page about spam email.
OPTION 3: If you feel you are being targeted by a scammer, you can file a report of a potential e-scams at the Internet Crime Complaint Center (IC3). The IC3 is a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C).
Additional resources on Phishing scams
VIDEO: ‘Phishy Home‘ via OnGuardOnline
… You just opened a can…
Professional, Consistent and Supportable
This is what we are after with our sites. When you are looking at your site and we are looking at 5,000 potential sites, our perspectives are going to be different. This first section, “The Computing Services Perspective” will get us on the same page. The second section, “Pr’tty your site up” will give some ideas for customization.
The Computing Services Perspective
Computing Services is tasked with providing sites that can be used to extend your classroom online. The intent of these sites is to be a resource to your students and improve communication with parents and the community. These goals are served by the functionality of the platform and the content that those using it provide. The visual appearance of the sites impacts our intent in that visitors are more likely to read and enjoy a site that isn’t punishing their eyeballs. With that in mind, we provide a theme that is clean, simple and emotionally neutral.
Your web site likely serves a number of audiences. As you are posting assignments and class notes, You may consider your primary audience to be your students. As you post this content, you may also have in mind that this information helps some parents stay informed and hold students accountable when at home. In this sense, your web site becomes your way to offer a transparent classroom, giving nobody the opportunity to say, “I didn’t know” whether that be students or those encouraging them. In this sense, your site needs to “dress” appropriately for it’s daily job of working with these diverse groups.
Your web site is part of a community of LPS web sites. While it can be personally fun and rewarding to design your page, it is not in the best interest of those visiting your page to have it be different from everybody else’s. Your web site is more friendly when it looks and behaves like other sites in your community. Likewise, you are more able to help others or be helped when you have the same configuration that another educator has.
What can seem like a small decision can be a pretty major one on the support end. Consider adding an additional theme. Here are some of the technical/support questions that have to be addressed.
- Does the browser work in the browsers our users use (Chrome, Firefox, Internet Explorer-Win v.7/v.8, Safari)?
- Does it support the plug-ins that we have installed?
- Is it compatible with our current themes so that somebody can switch to/from it easily?
- Does the theme look like it has solid development structure behind it?
- Are problems with it promptly addressed?
- Is it made compatible with new releases of WordPress promptly?
- Is the theme compatible with alternative user-agents such as screen readers
While it would be easiest for a while to just install themes/plug-ins for folks, over time it would begin to degrade everybody’s experience as a platform developed that was unmaintainable. The only shot that we have to be successful supporting the system is to limit the system add-ons to as few as possible.
Besides, keeping our system small provides many benefits. As we get feedback about how people are using their sites and what should be changed and improved, we have a clear target for those improvements. It would be much better use of time to make 5 improvements to the one core theme, than 1 improvement to 5 different themes. The new customization feature for example took most of a day to get working the way that we need it to, and will still take some tweaking. If we were running multiple themes, we would be quickly talking about almost a week to do the same thing. It unfortunately just doesn’t make sense institutionally to multiply the time required for every support effort so that some folks can have a site that looks just the way they want.
Pr’tty your site up
Now that that is out of the way and you know where we are coming from, here are some ideas for customizing your site that don’t require us to make changes for you on the system side.